Secure cPanel (Part 1) SSH & Control Panel

Posted by arkin
January 16, 2009

Secure your cPanel installation in Part 1 of a series of guides. This part will focus on securing SSH and securing the actual control panel.

Secure SSH

First of all you need to log into your server administration panel, also known as web host manager. You need to find the icon for Security, and click it.

ax_cp_security.png

You then need to find the icon for Security Center, and click that.

ax_security_center.png

Once in the security center, you need to find the Password Auth Tweak.

ax_password_auth_tweak.png

A brief explanation will be shown and a button to Enable or Disabled the Password Auth Tweak will be shown. We want to Disabled Password Authentication for SSH because many hackers attempt to brute force the SSH allowing them to gain access and control to the entire server. With this disabled, your server is not at risk. Notice: For maintenance and required access, I simply enable this when needed, and disable afterwards – minimizing the risk of intrusion completely.

ax_restart_ssh.png

When you click Disable, SSH should restart and if you are logged into SSH you will be logged out. You should see a confirmation once SSH has restarted and although SSH responds, it will not allow you to login.

Secure cPanel

To secure cPanel, go back to the Security Center and find cPHulk Brute Force protection.

ax_cphulk_disabled.png

If cPHulk is disabled, click on it and Enable it.
You can use the following settings as a guideline.

ax_cphulk_settings.png

This will block anyone from the control panel when they attempt to brute force it.
You can adjust the settings to be more lenient if you wish, they are pretty strict.

cPanel

If you enjoyed this post, please consider to leave a comment or subscribe to the feed and get future articles delivered to your feed reader.

Comments

No comments yet.

Leave a comment

(required)

(required)